Condividi:        

come posso togliere questi file infetti''??

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: m.paolo, kadosh, Luke57

come posso togliere questi file infetti''??

Postdi dui89 » 09/04/08 19:33

ciao..ho fatto una scansione con kaspersky ed ha rilevato un po di file infetti.. mi aiutate a toglierli?grazie :P

ecco la scansione online con kaspersky!!


KASPERSKY ONLINE SCANNER REPORT
Wednesday, April 09, 2008 7:11:46 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 9/04/2008
Kaspersky Anti-Virus database records: 692530
Scan Settings
Scan using the following antivirus database extended
Scan Archives true
Scan Mail Bases true
Scan Target My Computer
A:\
C:\
D:\
E:\
F:\
Scan Statistics
Total number of scanned objects 101264
Number of viruses found 5
Number of infected objects 9
Number of suspicious objects 0
Duration of the scan process 01:43:36

Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Dati applicazioni\ESET\ESET NOD32 Antivirus\Charon\CACHE.NDB Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\ESET\ESET NOD32 Antivirus\Logs\virlog.dat Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\ESET\ESET NOD32 Antivirus\Logs\warnlog.dat Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\Amd\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Amd\Dati applicazioni\Microsoft\Internet Explorer\UserData\index.dat Object is locked skipped
C:\Documents and Settings\Amd\Documenti\File temporanei Internet\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Cronologia\History.IE5\MSHist012008040920080410\index.dat Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Dati applicazioni\ApplicationHistory\cli.exe.af01e8cc.ini.inuse Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Dati applicazioni\Microsoft\Feeds Cache\index.dat Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Temp\NERO-8.3.2.1_ENG_TRIAL.EXE/Toolbar.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
C:\Documents and Settings\Amd\Impostazioni locali\Temp\NERO-8.3.2.1_ENG_TRIAL.EXE 7-Zip: infected - 1 skipped
C:\Documents and Settings\Amd\Impostazioni locali\Temp\Perflib_Perfdata_824.dat Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Temp\Perflib_Perfdata_c00.dat Object is locked skipped
C:\Documents and Settings\Amd\Impostazioni locali\Temp\Perflib_Perfdata_c10.dat Object is locked skipped
C:\Documents and Settings\Amd\ntuser.dat Object is locked skipped
C:\Documents and Settings\Amd\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Programmi\Circle Developement\Uninstall.exe Infected: Trojan-Dropper.Win32.Agent.lxl skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{C5D784C6-1415-4C98-A9FA-6F0BCBAD60B7}\RP15\A0008643.exe/stream/data0268 Infected: not-a-virus:RiskTool.Win32.FWDisabler.a skipped
C:\System Volume Information\_restore{C5D784C6-1415-4C98-A9FA-6F0BCBAD60B7}\RP15\A0008643.exe/stream Infected: not-a-virus:RiskTool.Win32.FWDisabler.a skipped
C:\System Volume Information\_restore{C5D784C6-1415-4C98-A9FA-6F0BCBAD60B7}\RP15\A0008643.exe NSIS: infected - 2 skipped
C:\System Volume Information\_restore{C5D784C6-1415-4C98-A9FA-6F0BCBAD60B7}\RP19\A0009123.exe Infected: Backdoor.Win32.IRCBot.ccw skipped
C:\System Volume Information\_restore{C5D784C6-1415-4C98-A9FA-6F0BCBAD60B7}\RP19\change.log Object is locked skipped
C:\System Volume Information\_restore{C5D784C6-1415-4C98-A9FA-6F0BCBAD60B7}\RP3\A0000072.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.621 skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\ie7updates\KB947864-IE7\iexplore.exe.000 Infected: Backdoor.Win32.IRCBot.ccw skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{23B9E17C-DBE1-4C60-8393-EF4547AFF354}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\config\ACEEvent.evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
Scan process completed.
dui89
Utente Junior
 
Post: 17
Iscritto il: 01/04/08 13:25

Sponsor
 

Re: come posso togliere questi file infetti''??

Postdi Luke57 » 10/04/08 08:41

Ciao, elimina i file temporanei con programmi ad hoc tipo ATF cleaner o CCleaner che trovi anche nel forum.
Inoltre disattiva il ripristino configurazione di sistema (click tasto dx su risorse del computer>proprietà>ripristino configurazione di sistema, metti la spunta a "disattiva ripristino.......">OK.
Al riavvio del computer, togli la spunta precedentemente immessa.
Poi lo scan rileva infetto questo file:
C:\WINDOWS\ie7updates\KB947864-IE7\iexplore.exe.000 Infected: Backdoor.Win32.IRCBot.ccw skipped, ma dovrebbe essere l'eseguibile di IE7.
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10

Re: come posso togliere questi file infetti''??

Postdi dui89 » 10/04/08 13:16

ok.grazie..adesso provo e ti faccio sapere :P
dui89
Utente Junior
 
Post: 17
Iscritto il: 01/04/08 13:25


Torna a Sicurezza e Privacy


Topic correlati a "come posso togliere questi file infetti''??":

pc non scarica file IPK
Autore: carlin
Forum: Software Windows
Risposte: 1

Chi c’è in linea

Visitano il forum: Nessuno e 96 ospiti